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Amendment To The Claims 

1 . (Previously presented) A system for securely transmitting Real 

Time Protocol voice packets during a communication session with a remote multimedia 
terminal adapter over an Internet protocol network, the system comprising: 

a local multimedia terminal adapter receiving the voice packets having a time 
stamp synchronization source operable to synchronize cryptographic operations between 
said local multimedia terminal adapter and said remote multimedia terminal adapter, the 
local multimedia terminal adapter comprising, 

a local key stream generator for generating a first key stream; 

a packet encryptor that encrypts the voice packets using at least a portion 
of the first key stream to form encrypted voice packets; 

the remote multimedia terminal adapter receiving the encrypted voice packets, the 
remote multimedia terminal adapters further comprising, 

a remote key stream generator for generating the first key stream in order 
to decrypt the encrypted voice packets; and 

a packet decryptor decrypting the encrypted voice packets using the first 
key stream, wherein both key stream generators generate a second key stream when a 
component used to transmit the Real Time Protocol voice packets changes during the 
communication session and the packet encryptor and packet decryptor use the second key 
stream. 
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2. (Previously presented) The system of claim 1 wherein the second 
key stream is generated when the system switches from a first to a second coder/decoder 
for compression/decompression of the voice packets. 

3. (Original) The system of claim 1 wherein the second key stream is 
generated when a Message Authentication Code algorithm change occurs. 

4. (Original) The system of claim 1 further comprising a local gateway 
controller for forwarding the encrypted packets through the Internet protocol network. 

5. (Original) The system of claim 1 further comprising a remote gateway 
controller for receiving the encrypted packets from the Internet protocol network and for 
forwarding encrypted voice packets to the remote multimedia terminal adapter. 

6. (Previously presented) A system for communicating Real Time 
Protocol voice packets between a local and a remote location over an Internet protocol 
network, the system comprising: 

a stream cipher module for encrypting the voice packets; and 
a key stream generator for generating a first Real Time Protocol key stream, the 
stream cipher module employing the first key stream to encrypt the voice packets for 
forwarding to the remote location, the key stream generator producing a second Real 
Time Protocol key stream for encrypting the voice packets when the system switches 
from a first communication parameter to a second communication parameter, each of the 
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first and second parameters being involved in the synchronization of the key stream, 
wherein the voice packets have a time stamp synchronization source operable to 
synchronize cryptographic operations between said local and remote locations. 

7. (Original) The system of claim 6 wherein the first communication 
parameter is a first coder/decoder that compresses/decompresses the voice packets, and 
the second communication parameter is a second coder/decoder that 
compresses/decompresses the voice packets. 

Claims 8-9 Cancelled. 

10. (Previously presented) The system of claim 6 further comprising a 
new time stamp sequence generated when the second Real Time Protocol key stream is 
generated. 

1 1 . (Currently amended) The system of claim 6 wherein the second key 
stream is generated by re-executing the following key derivation function: 

F(S, "End-End RTP Key Change <N>") 

where N is a counter incremented whenever a new set of Real Time Protocol keys 
is re-derived for the same media stream session; 

F( ) is a one-way pseudo-random function used for the purpose of key derivation; 

S is a shared secret which includes including a random value shared between the 
two endpoints and is known only to those two endpoints or a trusted server; and 


4 


U.S. Serial No.: 09/765,108 

"End-End RTP Key Change <N>" is a label that is used as a parameter to the key 
derivation function F( ), <N> stands for an ASCII representation of a decimal number, 
representing a counter. 

12. (Currently amended) The system of claim 6 wherein the second key 
stream is generated by re-executing the following key derivation function: 

F(S, SSRC, "End-End RTP Key Change <N>") where: 

S is a shared secret which includes including a random value shared between the 
two endpoints and is known only to those two endpoints or a trusted server; 

SSRC is the synchronization source session identifier; 

N is the counter of the number of key changes for the same SSRC value; and 

"End-End RTP Key Change <N>" is a label that is used as a parameter to the key 
derivation function F( ), <N> stands for an ASCII representation of a decimal number, 
representing a counter. 

1 3 . (Previously presented) A method for securely transmitting Real 
Time Protocol voice packets from a local to a remote location via a communication 
network, the method comprising: 

generating a first Real Time Protocol key stream for encrypting the voice packets; 

forwarding encrypted voice packets to the remote location; 

generating a second Real Time Protocol key stream for encrypting the voice 
packets in response to a request to change communication parameters for the same media 
stream during a communication session; and 
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forwarding voice packets encrypted with the second Real Time Protocol key 
stream to the remote location, wherein the voice packets have a time stamp 
synchronization source operable to synchronize cryptographic operations between said 
local and remote locations. 

14. (Original) The method of claim 13 further comprising reinitializing a 
time stamp for synchronizing decryption of the voice packets. 

15. (Currently amended) The method of claim 13 wherein the step of 
generating a second Real Time Protocol key stream is by re-executing the following key 
derivation function: 

F(S, "End-End RTP Key Change <N>") 

where N is a counter incremented whenever a new set of Real Time Protocol keys 
is re-derived for the same media stream session; 

F( ) is a one-way pseudo-random function used for the purpose of key derivation; 

S is a shared secret which includes including a random value shared between the 
two endpoints and is known only to those two endpoints or a trusted server; and 

"End-End RTP Key Change <N>" is a label that is used as a parameter to the key 
derivation function F( ), <N> stands for an ASCII representation of a decimal number, 
representing a counter. 
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16. (Currently amended) The method of claim 13 wherein the step of 
generating a second Real Time Protocol key stream is by re-executing the following key 
derivation function: 

F(S, SSRC, "End-End RTP Key Change <N>") where: 

S is a shared secret which includes including a random value shared between the 
two endpoints and is known only to those two endpoints or a trusted server; 
SSRC is the synchronization source session identifier; 
N is the counter of the number of key changes; and 

"End-End RTP Key Change <N>" is a label that is used as a parameter to the key 
derivation function F( ), <N> stands for an ASCII representation of a decimal number, 
representing a counter. 

17. (Previously presented) In a communication system having a 
gateway receiving communication sessions from two or more multimedia terminal 
adapters, a method for securely exchanging voice packets between the multimedia 
terminal adapters and the gateway, the method comprising: 

generating a first Real Time Protocol key stream for encrypting the voice packets; 

forwarding the voice packets encrypted with the first Real Time Protocol key 
stream to the gateway; 

generating a second Real Time Protocol key stream for encrypting the voice 
packets during a communication session in response to a collision detection wherein the 
multimedia terminal adapters have the same source identifier; and 
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forwarding voice packets encrypted with the second Real Time Protocol key 
stream to the remote location, wherein the voice packets have a time stamp 
synchronization source operable to synchronize cryptographic operations between said 
local multimedia terminal adapter and remote multimedia terminal adapter. 

18. (Currently amended) The method of claim 17 wherein the step of 
generating a second Real Time Protocol key stream is by re-executing the following key 
derivation function: 

F(S, SSRC, "End-End RTP Key Change <N>") where: 

S is a shared secret which includes including a random value shared between the 
two endpoints and is known only to those two endpoints or a trusted server; 
SSRC is the synchronization source session identifier; 
N is the counter of the number of key changes; and 

"End-End RTP Key Change <N>" is a label that is used as a parameter to the key 
derivation function F( ), <N> stands for an ASCII representation of a decimal number, 
representing a counter. 

19. (Previously presented) A system for securely transmitting voice 
packets during a communication session from a local location to a remote location over a 
communication network, the system comprising: 

a means for generating a first key stream at the local location; 
a means for encrypting the voice packets using at least a portion of the first key 
stream to form encrypted voice packets; 
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a means for forwarding the encrypted voice packets from the local location to the 
remote location; 

a means for generating the first key stream at the remote location in order to 
decrypt the encrypted voice packets; and 

a means for decrypting the encrypted voice packets using the first key stream, 
wherein both means for generating are capable of generating a second key stream when a 
component used to transmit the Real Time Protocol voice packets changes during the 
communication session, wherein the voice packets have a time stamp synchronization 
source operable to synchronize cryptographic operations between said local and remote 
locations. 

20. (Previously presented) The system of claim 19 wherein the second 
key stream is generated when the system switches from a first to a second coder/decoder 
for compression/decompression of the voice packets. 

21 . (Currently amended) The system of claim 19 wherein the second key 
stream is generated by re-executing the following key derivation function: 

F(S, "End-End RTP Key Change <N>") 

where N is a counter incremented whenever a new set of Real Time Protocol keys 
is re-derived for the same media stream session; 

F( ) is a one-way pseudo-random function used for the purpose of key derivation; 

S is a shared secret which includes including a random value shared between the 
two endpoints and is known only to those two endpoints or a trusted server and 
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"End-End RTP Key Change <N>" is a label that is used as a parameter to the key 
derivation function F( ), <N> stands for an ASCII representation of a decimal number, 
representing a counter. 


22. (Currently amended) The system of claim 19 wherein the second key 
stream is generated by re-executing the following key derivation function: 
F(S, SSRC, "End-End RTP Key Change <N>") where: 

S is a shared secret which includes including a random value shared between the 
two endpoints and is known only to those two endpoints or a trusted server; 
SSRC is the synchronization source session identifier; 
N is the counter of the number of key changes; and 

"End-End RTP Key Change <N>" is a label that is used as a parameter to the key 
derivation function F( ), <N> stands for an ASCII representation of a decimal number, 
representing a counter. 


23. (Original) The system of claim 19 further comprising a means for 
synchronizing the voice packets. 
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